General
-
Target
5cbb7d5ad4093165191596a1f3c6007c_JaffaCakes118
-
Size
387KB
-
Sample
240331-ypx7naaf7y
-
MD5
5cbb7d5ad4093165191596a1f3c6007c
-
SHA1
e36c8d00c1000ccc8caccbbaab2be92ca137007a
-
SHA256
f1d83f3c30658ddff9efd866d06b7b5db3e0b999b699aead43de4ba3d6e3fc84
-
SHA512
9b551fe980445c9ee1b25f4d6f4924abbd49b5e5267dbbd177062714c93b33ec31761883a1f4066a909aa651cdb7ed2d9f5dc593d9ea6002606a6c19b690c45f
-
SSDEEP
6144:2ceWpHyGIoGNnOU8TmSq9q1uwrgdftNJN1VyalBUhT4lq2Q/kPKY:ReEyGtGROmlkQftzN1VyaqT4ltvPKY
Static task
static1
Behavioral task
behavioral1
Sample
5cbb7d5ad4093165191596a1f3c6007c_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
redline
paladin
37.228.129.48:29795
-
auth_value
f27db372188045eefdf974196ead3dae
Targets
-
-
Target
5cbb7d5ad4093165191596a1f3c6007c_JaffaCakes118
-
Size
387KB
-
MD5
5cbb7d5ad4093165191596a1f3c6007c
-
SHA1
e36c8d00c1000ccc8caccbbaab2be92ca137007a
-
SHA256
f1d83f3c30658ddff9efd866d06b7b5db3e0b999b699aead43de4ba3d6e3fc84
-
SHA512
9b551fe980445c9ee1b25f4d6f4924abbd49b5e5267dbbd177062714c93b33ec31761883a1f4066a909aa651cdb7ed2d9f5dc593d9ea6002606a6c19b690c45f
-
SSDEEP
6144:2ceWpHyGIoGNnOU8TmSq9q1uwrgdftNJN1VyalBUhT4lq2Q/kPKY:ReEyGtGROmlkQftzN1VyaqT4ltvPKY
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-